CVE-2007-4559

Creosote is a static analysis tool that scans Python files for potential vulnerabilities related to CVE-2007-4559, specifically focusing on unsafe usage of the tarfile module's extract and extractall methods. It categorizes findings into three confidence levels (Vuln, Probable Vuln, Potential Vuln) based on AST analysis.

This repository contains a functional Python PoC for CVE-2007-4559, demonstrating a tar path traversal vulnerability. The script creates a malicious TAR archive with a crafted path to escape the extraction directory and overwrite a file in /tmp.

This repository contains a functional exploit PoC for CVE-2007-4559, demonstrating a directory traversal vulnerability in Python's `tarfile.extractall()` function. The lab includes a Dockerized environment with a vulnerable API, a fixed API, and an attacker component to craft and upload malicious tarballs.

This repository contains a functional exploit PoC for CVE-2007-4559, demonstrating a directory traversal vulnerability via crafted tar archives. The exploit leverages path traversal to access files outside the intended directory, such as the flag file.

This repository demonstrates a bypass for Trellix's patch for CVE-2007-4559, a path traversal vulnerability in tar file extraction. The PoC uses a symlink to bypass the patch's directory traversal check, allowing arbitrary file write outside the intended extraction directory.

This repository provides a detailed technical analysis and demonstration of CVE-2007-4559, a directory traversal vulnerability in Python's tarfile module. It includes instructions for crafting a malicious tar file and a Python script to illustrate why the fix in Python 3.11.4 was necessary.

This repository contains a functional exploit for CVE-2007-4559, targeting Polemarch server via a crafted TAR archive to deploy a cryptominer and rootkit. The exploit leverages directory traversal in Python's tarfile module to overwrite arbitrary files.